|
|
Prev week |
Colapse all |
Post message
SGI Advanced Linux Environment 3 Security Update #1 2004-05-26 SGI Security Coordinator (agent99 sgi com) Re: [ GLSA 200405-18 ] Buffer Overflow in Firebird 2004-05-25 b0f www.b0f.net (b0fnet yahoo com) In-Reply-To: <40B0954A.6020103 (at) gentoo (dot) org [email concealed]> This bug is over 1 year old take a look here http://www.securityfocus.com/archive/1/321087/2003-05-08/2003-05-14/0 Also includes exploit. -b0f Hi bob >Received: (qmail 26887 invoked from network); 24 May 2004 15:08:38 -0000 >Received: from [ more ] [ reply ] [CLA-2004:843] Conectiva Security Announcement - kde 2004-05-26 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : kde SUMMARY : Fix for URI handler vulnerabili [ more ] [ reply ] Re: IRIX libcpr vulnerability 2004-05-26 Jan Schaumann (jschauma netmeister org) SGI Security Coordinator <agent99 (at) sgi (dot) com [email concealed]> wrote: > -----BEGIN PGP SIGNED MESSAGE----- > > ________________________________________________________________________ ______ > > SGI Security Advisory > > Title: libcpr vulnerability > Number: 20040507-01-P > [ more ] [ reply ] [ GLSA 200405-21 ] Midnight Commander: Multiple vulnerabilities 2004-05-26 Kurt Lieber (klieber gentoo org) [Full-Disclosure] iDEFENSE Security Advisory 05.26.04: 3Com OfficeConnect Remote 812 ADSL Router Telnet Protocol Denial of Service Vulnerability 2004-05-26 idlabs-advisories idefense com iDEFENSE Security Advisory 05.26.04 www.idefense.com/application/poi/display?id=105&type=vulnerabilities May 26, 2004 I. BACKGROUND The 3Com OfficeConnect Remote 812 ADSL Router is a standalone bridge/router, with interfaces to a Local Area Network and an ADSL interface to a Wide Area Network. II [ more ] [ reply ] IEBUG: Archives of Internet Explorer 2004-05-26 Liu Die Yu (liudieyuinchina yahoo com cn) IEBUG: Archives of Internet Explorer ==================================== hi, everyone. i have created a website containing all bugtraq&fd&ms messages related to security issues of: internet explorer, outlook, windows media player and java virtual machine since 2000. it's created and updated by a s [ more ] [ reply ] [security bulletin] SSRT4719 hp OpenView Select Access remote unauthorized access 2004-05-26 Boren, Rich (SSRT) (rich boren hp com) SUSE Security Announcement: kdelibs (SuSE-SA:2004:014) 2004-05-26 krahmer suse de (Sebastian Krahmer) FreeBSD Security Advisory FreeBSD-SA-04:11.msync 2004-05-26 FreeBSD Security Advisories (security-advisories freebsd org) [security bulletin]SSRT4724 HP integrated Lights Out (iLO) Denial of Service (DoS) using port zero 2004-05-26 Boren, Rich (SSRT) (rich boren hp com) [security bulletin] SSRT4749 HP-UX Java Runtime Environment (JRE) remote DoS 2004-05-26 Boren, Rich (SSRT) (rich boren hp com) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 HP SECURITY BULLETIN HPSBUX01044 REVISION: 0 SSRT4749 rev.0 HP-UX Java Runtime Environment (JRE) remote DoS ----------------------------------------------------------------- NOTICE: There are no restrictions for distribution of this Bulletin [ more ] [ reply ] [ GLSA 200405-20 ] Insecure Temporary File Creation In MySQL 2004-05-25 Thierry Carrez (koon gentoo org) [CLA-2004:842] Conectiva Security Announcement - mailman 2004-05-25 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : mailman SUMMARY : Several mailman fixes DATE [ more ] [ reply ] ERRATA: [ GLSA 200405-16 ] Multiple XSS Vulnerabilities in SquirrelMail 2004-05-25 Kurt Lieber (klieber gentoo org) [CLA-2004:841] Conectiva Security Announcement - libneon 2004-05-25 Conectiva Updates (secure conectiva com br) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ------------------------------------------------------------------------ -- CONECTIVA LINUX SECURITY ANNOUNCEMENT - ------------------------------------------------------------------------ -- PACKAGE : libneon SUMMARY : Fix for a buffer overflow v [ more ] [ reply ] SSH URI handler remote arbitrary code execution 2004-05-24 kang (kang insecure ws) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Adv: safari_0x06 Release Date: 24/05/2004 Affected Products: MacOSX >= 10.3.3, Various Browsers, possibly others platforms/browsers Fixed in: Not fixed. Impact: Remote code execution. Severity: High. Vendors: Notified (20-23/02/04) Author: kang@insecure [ more ] [ reply ] [ GLSA 200405-19 ] Opera telnet URI handler file creation/truncation vulnerability 2004-05-25 Kurt Lieber (klieber gentoo org) Netgear RP114 URL filter fails if URL is too long 2004-05-24 Marc Ruef (marc ruef computec ch) Hi! Netgear has some small router and firewalling devices for home users and small companies (SOHO). Most of these solutions are able to do a simple keyword based URL filtering. Lets say we don't want users to visit http://www.scip.ch so we create a filter for the keyword "scip.ch". If a user wants [ more ] [ reply ] cPanel mod_phpsuexec Vulnerability 2004-05-24 Rob Brown (rob asquad com) Severity: High, Arbitrary Execution, Local Privilege Escalation Background: cPanel is a common web hosting management system written by cpanel.net installed on UNIX Operation Systems to help manage web, email, ftp, databases, and other administrative tasks. Problem Description: The options [ more ] [ reply ] [SECURITY] [DSA 508-1] New xpcd packages fix buffer overflow 2004-05-23 Matt Zimmerman (mdz debian org) e107 web portal user.php XSS (Cross Site Scripting) 2004-05-22 Chris Norton (kicktd ramsecurity us) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ------------------------------------------------- R.A.M Security Advisory ------------------------------------------------- http://www.ramsecurity.us ------------------------------------------------- Severity: Medium Title: e107 web portal us [ more ] [ reply ] Liferay Cross Site Scripting Flaw 2004-05-22 Giri, Sandeep (giris deshaw com) Advisory Name: Liferay Cross Site Scripting flaw Release Date: 05/22/2004 Application: Liferay (www.liferay.com) Author: Sandeep Giri Vendor Status: Notified ( 4 months ago) Overview: (Taken from http://www.liferay.com/products/index.jsp) Liferay Enterprise Portal was designed to: Provi [ more ] [ reply ] MDKSA-2004:050 - Updated kernel packages fix multiple vulnerabilities 2004-05-22 Mandrake Linux Security Team (security linux-mandrake com) |
|
Privacy Statement |
Hash: SHA1
________________________________________________________________________
OpenPKG Security Advisory The OpenPKG Project
http://www.openpkg.org/security.html http://www.openpkg.org
openpkg-security (at) openpkg (dot) org [email concealed]
[ more ] [ reply ]